Wind River Support Network

HomeDefectsLIN8-9750

Fixed

LIN8-9750 : Security Advisory - gnutls - CVE-2018-10845

Created: Aug 31, 2018 Updated: Jan 8, 2019

Resolved Date: Sep 13, 2018

Found In Version: 8.0.0.27

Fix Version: 8.0.0.28

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Userspace

Description

It was found that the GnuTLS implementation of HMAC-SHA-384 was vulnerable to a Lucky thirteen style attack. Remote attackers could use this flaw to conduct distinguishing attacks and plain text recovery attacks via statistical analysis of timing data using crafted packets.

https://nvd.nist.gov/vuln/detail/CVE-2018-10845

Other Downloads

Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2018-10845